Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/GfLQ7-w11U6E7fE4OZlI5hFX3KE.roa
File: GfLQ7-w11U6E7fE4OZlI5hFX3KE.roa (raw, json)
Hash identifier: KZK4NZOk1dr+h1d06e5kfhMNNPpHHMQAMrCYARwM4XE=
Subject key identifier: 19:F2:D0:EF:EC:35:D5:4E:84:ED:F1:38:39:99:48:E6:11:57:DC:A1
Certificate issuer: /CN=e0574c2878d6b536139b895f08c9c6db18e12a9b
Certificate serial: 0185700B95A309CF6D71B1CC5DEE64F7C851
Authority key identifier: E0:57:4C:28:78:D6:B5:36:13:9B:89:5F:08:C9:C6:DB:18:E1:2A:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4FdMKHjWtTYTm4lfCMnG2xjhKps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/GfLQ7-w11U6E7fE4OZlI5hFX3KE.roa
Signing time: Mon 02 Jan 2023 01:14:45 +0000
ROA not before: Mon 02 Jan 2023 01:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60455
IP address blocks: 195.69.187.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:0b:95:a3:09:cf:6d:71:b1:cc:5d:ee:64:f7:c8:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0574c2878d6b536139b895f08c9c6db18e12a9b
Validity
Not Before: Jan 2 01:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19f2d0efec35d54e84edf138399948e61157dca1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:0c:ed:0b:53:47:0c:5f:6b:0a:05:6b:2c:6d:
d8:88:d3:55:e4:99:11:e9:3c:13:2d:00:01:c7:c1:
05:83:1e:0e:bf:e4:75:96:8a:40:25:a2:c4:23:31:
e2:5b:1e:2d:42:b8:45:c5:7f:aa:ff:e8:23:22:e1:
85:a9:c4:46:1a:c6:4a:12:82:4b:95:d8:98:93:55:
cf:fc:e6:19:2b:a5:b4:cb:97:d4:fe:cc:39:42:9e:
79:37:96:c6:f0:2a:fd:ea:6c:0f:62:72:70:a0:68:
72:f8:f2:50:de:b2:c8:2f:f2:b5:b6:ec:1a:ab:ff:
48:dd:fa:ca:6d:3d:14:45:c3:85:02:80:9b:a1:a3:
b4:45:7b:ff:a5:4b:06:ba:63:23:9a:fc:58:3a:a9:
5e:a1:98:7d:60:6a:cd:93:10:58:2b:8e:57:2d:e8:
b7:6a:e9:e1:51:49:e3:4b:df:69:ac:05:3f:6b:ca:
34:eb:22:ba:52:00:16:f2:dc:59:bf:d2:36:29:1e:
c7:84:3b:32:ca:00:1d:92:65:09:a7:94:00:14:a8:
38:3f:16:58:4f:92:a7:c3:a9:51:2a:7a:1f:ae:51:
0a:f4:43:3a:16:46:74:b8:4a:a1:8d:06:1b:47:1b:
fd:25:42:69:92:6b:60:bb:ac:9b:94:a1:12:53:ac:
7b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:F2:D0:EF:EC:35:D5:4E:84:ED:F1:38:39:99:48:E6:11:57:DC:A1
X509v3 Authority Key Identifier:
keyid:E0:57:4C:28:78:D6:B5:36:13:9B:89:5F:08:C9:C6:DB:18:E1:2A:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4FdMKHjWtTYTm4lfCMnG2xjhKps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/GfLQ7-w11U6E7fE4OZlI5hFX3KE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/4FdMKHjWtTYTm4lfCMnG2xjhKps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.69.187.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:6e:f9:72:6c:28:c5:91:f2:e9:f6:c6:87:e8:3c:af:6f:1c:
70:c7:02:28:08:7e:0d:6a:3e:12:61:be:85:00:f6:f2:06:0a:
66:dc:31:c3:b2:8d:49:36:da:99:b6:88:e0:50:ad:35:00:54:
00:37:90:2f:9f:60:2b:42:8c:bb:67:31:d1:86:d4:d4:8b:d9:
84:c3:68:a5:8f:db:e9:a3:d2:c6:10:38:d0:94:17:e7:ba:7b:
81:cc:eb:a8:4e:d7:3b:16:7b:ca:ee:73:c1:66:b7:7f:18:d4:
6b:9d:c1:c2:72:25:0b:59:61:d9:42:df:83:13:40:18:6e:b0:
13:a5:a2:f5:3e:54:16:e8:9f:6a:67:43:67:8b:5b:5f:6e:c5:
6b:29:1c:43:6d:1e:11:51:2a:f9:58:d2:82:1e:4d:dc:47:cd:
bd:fa:56:15:9a:ca:0b:f4:da:2e:74:b9:00:07:7f:15:89:dc:
3c:9c:59:30:6c:56:4e:d8:a5:76:d3:62:62:b1:75:e4:64:c4:
9b:62:22:e6:72:33:fc:a3:8c:84:da:65:09:93:ca:11:70:a5:
a4:88:21:59:9f:1a:2b:10:9b:76:13:27:b7:3e:66:de:c1:69:
ad:fd:96:a2:87:98:df:92:e5:cb:7e:3e:8b:54:97:bf:81:69:
c2:fe:d8:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:30:55 2024 by rpki-client on console.sobornost.net